Image Source: Forbes
When various internal communications and engineering systems were compromised, the ride-hailing company, Uber, declared that it was looking into the matter.
The hacker gave pictures of the email, cloud storage, and code repositories to the newspaper, where the New York Times first reported the intrusion.
The story claimed, citing two employees, that Uber employees were instructed not to use Slack’s business communications software.
“I announce I am a hacker, and Uber has suffered a data breach,” said the message that Uber employees got just before the Slack system was shut down.
The uploading of an explicit photo on an internal information page for staff suggested that the hacker was later able to access additional internal systems.
Uber claimed that it had spoken to law enforcement about the issue.
There has been no sign that the attack has impacted the Uber user base, its fleet of vehicles, or its payment information.
A California-based network for bug bounties called HackerOne receives a subscription fee from Uber. A lot of large companies implement bug bounty programs, in which ethical hackers are paid for finding bugs.
One of the bug bounty hunters, Sam Curry, spoke with the Uber hacker. It appears like they have compromised a number of things, he remarked.
According to Mr. Curry, he spoke with a number of Uber staff members, who stated that they were “trying to lock down everything internally” to limit the hacker’s access.
Nothing suggested the hacker had caused any harm or was motivated by anything other than notoriety, he claimed.
HackerOne’s chief hacking officer Chris Evans says, “We’re in close touch with Uber’s security team, have shut down their data, and will continue to assist with their investigation.” Chris Evans made the statement to the BBC.
Who is responsible?
According to texts obtained by the BBC, several Uber admin accounts are in their possession.
According to the New York Times, the hacker, who is 18 years old, had been honing his cyber-security abilities for several years and broke into the Uber servers because “their security was lax.”
The individual added that Uber drivers ought to be paid more in the Slack message that disclosed the hack.
As the phrase goes in cybersecurity, “people are the weakest link,” and this incident again demonstrates that an employee who was duped allowed the thieves in.
Although the adage is accurate, it is also very rude.
This hacker was extremely talented and motivated, as is becoming clear from the evidence.
As we just witnessed with the Okta, Microsoft, and Twitter hacks, inexperienced hackers with lots of free time and a carefree attitude can influence even the most cautious staff to commit cyber-security sins.
Just ask prominent ex-hacker Kevin Mitnick, who used sweet-talking to get around telephone networks in the 1970s, that this kind of hacking through social engineering is older than computers themselves.
Today’s hackers may make their jobs even simpler by fusing their natural charisma with highly developed and user-friendly technologies.
Uber launches tool to help reduce transportation-related carbon footprint
Measuring carbon emissions is the first step for businesses to take in reducing them. To accomplish this, Uber unveiled a new technology on Monday that enables businesses to monitor emissions when staff members ride for work-related purposes.
Uber provides employee transportation for almost 170,000 businesses. On the Uber for Business dashboard, which the firm shared exclusively with Protocol, they now have access to a range of sustainability insights. Susan Anderson, the global president of the company’s business division, told Protocol that the dashboard may enable corporate clients “monitor, report and act on their ground transportation impacts globally.”
In addition to the number of low-emission trips a client’s employees have done, the new capabilities include data on the company’s overall emissions from all rides and the typical grams of carbon dioxide emitted each mile. Clients might utilize this information as corporate travel picks up to understand better the environmental cost of employees hailing rides for business trips or to and from events and to set goals for lowering those emissions.